From owner-freebsd-hackers  Mon Sep 13 18: 3:37 1999
Delivered-To: freebsd-hackers@freebsd.org
Received: from relay.ucb.crimea.ua (relay.ucb.crimea.ua [212.110.138.1])
	by hub.freebsd.org (Postfix) with ESMTP id BBF6015535
	for <hackers@FreeBSD.ORG>; Mon, 13 Sep 1999 18:03:07 -0700 (PDT)
	(envelope-from ru@ucb.crimea.ua)
Received: (from ru@localhost)
	by relay.ucb.crimea.ua (8.9.3/8.9.3/UCB) id EAA77794;
	Tue, 14 Sep 1999 04:02:20 +0300 (EEST)
	(envelope-from ru)
Date: Tue, 14 Sep 1999 04:02:20 +0300
From: Ruslan Ermilov <ru@ucb.crimea.ua>
To: Doug White <dwhite@resnet.uoregon.edu>
Cc: hackers@FreeBSD.ORG
Subject: Re: Multiple NAT alias addresses
Message-ID: <19990914040220.B71293@relay.ucb.crimea.ua>
Mail-Followup-To: Doug White <dwhite@resnet.uoregon.edu>,
	hackers@FreeBSD.ORG
References: <Pine.BSF.4.10.9909131744020.88005-100000@resnet.uoregon.edu>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 0.95.3i
In-Reply-To: <Pine.BSF.4.10.9909131744020.88005-100000@resnet.uoregon.edu>; from Doug White on Mon, Sep 13, 1999 at 05:48:11PM -0700
X-Operating-System: FreeBSD 3.2-STABLE i386
Sender: owner-freebsd-hackers@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Mon, Sep 13, 1999 at 05:48:11PM -0700, Doug White wrote:
> hello ..
> 
> We're trying to turn up a firewall box running NAT with multiple external
> IPs.  I added the alias and set up natd.conf as follows:
> 
> use_sockets yes
> same_ports yes
> #
> # machine1 redirections 
> #redirect_port tcp 192.168.2.237:ssh 1.2.3.4:ssh
> #redirect_port tcp 192.168.2.237:smtp 1.2.3.4:smtp
> #redirect_port tcp 192.168.2.237:pop3 1.2.3.4:pop3
> #redirect_port tcp 192.168.2.237:imap4 1.2.3.4:imap4
> 
> # machine2 redirections
> redirect_port tcp 192.168.2.201:ssh 1.2.3.5:ssh
> redirect_port tcp 192.168.2.201:http 1.2.3.5:http
> 
> I start natd with:
> 
> natd -f /etc/natd.conf -n fxp0  where fxp0 is the public-side interface.
> 
> Restarting natd with this configuration causes it to block everything.
> 
So, without redirect_port's it works OK?
Have you tried to run it in the foreground? (`natd -v')

> Does natd support multiple alias addresses, or am I missing something
> obvious?
> 
Definitely supports!

BTW, what version you are on?


-- 
Ruslan Ermilov		Sysadmin and DBA of the
ru@ucb.crimea.ua	United Commercial Bank,
ru@FreeBSD.org		FreeBSD committer,
+380.652.247.647	Simferopol, Ukraine

http://www.FreeBSD.org	The Power To Serve
http://www.oracle.com	Enabling The Information Age


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message